After you convey a Check Point to the expertise, it is going to 1st benefit you by helping change your get the job done circulate. By means of furthering your understanding platform, you will find a improved expertise in what you are doing and then get the job done more expeditiously. Further, you will be aware on your path throughout the software program a lot better than many, that can typically will let you choose the speediest and many effective method for anyone to complete your current tasks. However it doesn?¡¥t basically close along with personal work productivity degrees and also learning all there is to know in relation to Check Point systems.
2021 Aug 156-215.77 free practice questions
Q251. - (Topic 3)
Which of the following authentication methods can be configured in the Identity Awareness setup wizard?
A. TACACS
B. Check Point Password
C. Windows password
D. LDAP
Answer: D
Q252. - (Topic 3)
Which command gives an overview of your installed licenses?
A. cplic print
B. cplicense
C. fw lic print
D. showlic
Answer: A
Q253. - (Topic 2)
A Web server behind the Security Gateway is set to Automatic Static NAT. Client side NAT is not checked in the Global Properties. A client on the Internet initiates a session to the Web Server. Assuming there is a rule allowing this traffic, what other configuration must be done to allow the traffic to reach the Web server?
A. A static route for the NAT IP must be added to the Gateway's upstream router.
B. Automatic ARP must be unchecked in the Global Properties.
C. Nothing else must be configured.
D. A static route must be added on the Security Gateway to the internal host.
Answer: D
Q254. - (Topic 2)
In order to have full control, you decide to use Manual NAT entries instead of Automatic NAT rules. Which of the following is NOT true?
A. When using Static NAT, you must enter ARP entries for the Gateway on all hosts that are using the NAT Gateway with that Gateway's internal interface IP address.
B. When using Static NAT, you must add proxy ARP entries to the Gateway for all hiding addresses.
C. If you chose Automatic NAT instead, all necessary entries are done for you.
D. When using Dynamic Hide NAT with an address that is not configured on a Gateway interface, you need to add a proxy ARP entry for that address.
Answer: A
Q255. - (Topic 3)
When configuring the Check Point Gateway network interfaces, you can define the direction as Internal or External.
What does the option Interface leads to DMZ mean?
A. Using restricted Gateways, this option automatically turns off the counting of IP Addresses originating from this interface.
B. Activating this option automatically turns this interface to External.
C. It defines the DMZ Interface since this information is necessary for Content Control
D. Select this option to automatically configure Anti-Spoofing to this net.
Answer: C
Most up-to-date 156-215.77 practice test:
Q256. - (Topic 2)
Which rule is responsible for the installation failure?
A. Rule 3
B. Rule 5
C. Rule 6
D. Rule 4
Answer: C
Q257. - (Topic 3)
The Identity Agent is a lightweight endpoint agent that authenticates securely with Single Sign-On (SSO). What is not a recommended usage of this method?
A. Leveraging identity for Data Center protection
B. Protecting highly sensitive servers
C. When accuracy in detecting identity is crucial
D. Identity based enforcement for non-AD users (non-Windows and guest users)
Answer: D
Q258. - (Topic 3)
The R77 fw monitor utility is used to troubleshoot which of the following problems?
A. User data base corruption
B. Traffic issues
C. Phase two key negotiation
D. Log Consolidation Engine
Answer: B
Q259. - (Topic 3)
Identity Awareness can be deployed in which of the following modes?
A. Router
B. Detect
C. Load Sharing
D. High Availability
Answer: B
Q260. - (Topic 1)
Which of the following is a CLI command for Security Gateway R77?
A. fw merge
B. fw tab -u
C. fw shutdown
D. fwm policy_print <policyname>
Answer: B